Re: [v6ops] Geoff/queue-closed: 56%
Brian Candler <brian@nsrc.org> Wed, 17 April 2024 13:48 UTC
Return-Path: <brian@nsrc.org>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18934C14F6A5 for <v6ops@ietfa.amsl.com>; Wed, 17 Apr 2024 06:48:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.796
X-Spam-Level:
X-Spam-Status: No, score=-2.796 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=nsrc.org header.b="Yq7vZ9bi"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="k4qKB8AP"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WjldL0POe0oT for <v6ops@ietfa.amsl.com>; Wed, 17 Apr 2024 06:48:25 -0700 (PDT)
Received: from fout1-smtp.messagingengine.com (fout1-smtp.messagingengine.com [103.168.172.144]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 52BCFC14F60E for <v6ops@ietf.org>; Wed, 17 Apr 2024 06:48:25 -0700 (PDT)
Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailfout.nyi.internal (Postfix) with ESMTP id EC98C1380255; Wed, 17 Apr 2024 09:48:23 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163]) by compute4.internal (MEProxy); Wed, 17 Apr 2024 09:48:23 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nsrc.org; h=cc :cc:content-type:content-type:date:date:from:from:in-reply-to :in-reply-to:message-id:mime-version:references:reply-to:subject :subject:to:to; s=fm3; t=1713361703; x=1713448103; bh=6+Bnjg3Yuk 0OA6tf+2Hvjo/Z/EmIZPoGkJS6PghYci8=; b=Yq7vZ9bi9OZKyPTkQs3aG6fFmn rVPBC3k4SbCA9Tdg73j8f0hKGnZmnCMX1+Md1p+aGz54YyKkd1ybq/r/z3xQO+0F tdkkA8NjIUS3+UOEeebS2/875O4LMIZrUyt3UIcVdx8XMCKqWDTbbfXeGjfnI2x/ SRznvfmKDb6y0yzRAZJYlE+7f170IRz+u/HW3ySvE/asBWRwiwKEWwIe2ET/pqfL bZYy2WvZIJZYJMOWCIefPURfBy/ocminhFx3s+8E0+36R9beugTgRJwLT3OhlJuu NlJJWZINfHQ3RTeho+hxVul3bcKTQaFcGAdVkfGj/3fTu3EEs44KWF7M5W2w==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-type:content-type:date:date :feedback-id:feedback-id:from:from:in-reply-to:in-reply-to :message-id:mime-version:references:reply-to:subject:subject:to :to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s= fm3; t=1713361703; x=1713448103; bh=6+Bnjg3Yuk0OA6tf+2Hvjo/Z/EmI ZPoGkJS6PghYci8=; b=k4qKB8APoTzriPNQ97tPsF62dSO9qWUIjQwXap1moV4z 1/MU053mFGYQKQTLRZwpqIiiBygWOkvhyfoPwwrIh3pHOJ7d+1wikWnhjwCwevFT 9lSTvyh3Ej3+4SZaD06evnzlTO6m+86yhsZzqs6eWjX0qHUQoSPrXPtZR9UsxvZy hx/oRmmHKRGdStuoCWMBXg+P0arTGMg5pUd0bLgMbYrsiXQ3Rm0QvGKJp4DvIVjR lleo0zgS+uRYFZZzbcrw3O2XepNeQAyv7KM+E+GzcUDPXxrjfbIbjBWQbjjJFUfz isJYD790uiaREHhlVXTaJ8JLgpgqpIQ249RnqBhoQA==
X-ME-Sender: <xms:JtMfZnYQh2yAZd3qslI8PH97m25Gkq6T-zIs6J0Z7A1s-6ReDfu7yg> <xme:JtMfZmYiCldk7g5h-c44M1ni6L-1cmIAJfdxp43ZhYlJ8vXes183iofjHfoSoxg1y XJqu1XWujAQ-JrnkOM>
X-ME-Received: <xmr:JtMfZp-hoEujvmZFo-44YOpMTjIcQYl-jO298bidMwsTAR4bXHoF-GAL1NqtKeU>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvledrudejkedgjedtucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurheptgfkffggfgfuvfevfhfhjgesrgdtreertddvjeenucfhrhhomhepuehrihgr nhcuvegrnhgulhgvrhcuoegsrhhirghnsehnshhrtgdrohhrgheqnecuggftrfgrthhtvg hrnhepkeelgfelueehgeekieejhffhkeegteelkeehheetheeuteeiudefieetfeehudet necuffhomhgrihhnpegssggtrdgtohdruhhkpdhthhgvrhgvghhishhtvghrrdgtohdruh hknecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepsghr ihgrnhesnhhsrhgtrdhorhhg
X-ME-Proxy: <xmx:JtMfZtoWEaog8byyDq2xsHs-KfAmBm1U1vaxRDWatq2aVtd5hceWtg> <xmx:JtMfZipbCh06GZvJ78Y0JNPsrR9XbaTZhGJsaktjW_-B8KdxneQ0Vw> <xmx:JtMfZjQp76KfOXGE6VZ0JE1BTUWUssnbkfhDEjS9JpagrFJT5_9arQ> <xmx:JtMfZqrUZsXnIrhH2GdJZmZpTPQAlyQj90vQ5Z0Sj9mGqFeQa8NvkA> <xmx:J9MfZjd_Uf2R0czY_vuw1IwbMcAIAyned-S4d6I6KMTHGr0VrksmS_4B>
Feedback-ID: i8f09498f:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Wed, 17 Apr 2024 09:48:21 -0400 (EDT)
Content-Type: multipart/alternative; boundary="------------NKdRsj5f0UydoHFCszUNEX5z"
Message-ID: <a98a82dd-dd47-4c21-ad08-ec717e13a847@nsrc.org>
Date: Wed, 17 Apr 2024 14:48:20 +0100
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Content-Language: en-GB
To: Gert Doering <gert@space.net>
Cc: Xipengxiao <xipengxiao=40huawei.com@dmarc.ietf.org>, Mark Andrews <marka@isc.org>, Toerless Eckert <tte@cs.fau.de>, "v6ops@ietf.org" <v6ops@ietf.org>
References: <ZfplwNJGdpl05bZO@faui48e.informatik.uni-erlangen.de> <EF78559D-7879-4C0D-A47B-08AB279FD40B@isc.org> <5a4d382100604730bd31c45ba196d62a@huawei.com> <41e6d96d-dd6d-4982-9160-92bffb5eafad@nsrc.org> <Zh-trcwsxAwHgkus@Space.Net>
From: Brian Candler <brian@nsrc.org>
In-Reply-To: <Zh-trcwsxAwHgkus@Space.Net>
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/6v7kaCvsakAhAv_XAqJZkIFIbBw>
Subject: Re: [v6ops] Geoff/queue-closed: 56%
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Apr 2024 13:48:30 -0000
On 17/04/2024 12:08, Gert Doering wrote: > On Wed, Apr 17, 2024 at 11:53:35AM +0100, Brian Candler wrote: >> Also, everyone should be clear that there is currently no such thing as >> "migrate to IPv6". You either add IPv6 to your IPv4 stack, or you stay with >> IPv4. You can't remove the IPv4 part without cutting yourself off from most >> of the Internet. > This is not a message the IETF should be spreading, because then the logical > question follows "why bother with IPv6 at all, if I have to keep IP4 around". That is ultimately why this so-called "migration" hasn't happened - and wishful thinking won't change that, nor keeping quiet about reality. If there's any message the IETF should be spreading, it's that they live on the same planet as the rest of us. Dual-stack would be excellent as a migration tool: add v6 this month, remove v4 next month, job done. But that's not what's being asked of users, and dual-stack as a "forever" proposition is absolutely terrible. Nobody should be surprised that it has been rejected for the last 25 years, and will continue to be rejected. Dabbling at the edges does not change this fundamental fact - such as saying "oh look, we measure lower RTT for IPv6 than IPv4, now you have a good reason to enable IPv6!". It isn't, and they won't. We all wish there were more addresses, and this is most keenly felt at the access ISP side of things. In the UK, many new fibre operators are starting to put people behind CGNAT, which nobody wants. As I see it, there are two general ways to approach this. (1) You can try to get *all* the content providers in the world to enable IPv6. This is the approach which has been tried and failed over >25 years. IMO, this was always doomed to fail. For as long as any significant banks, shops, restaurants or government services are not reachable via IPv6, then an IPv6-only connection is useless. And it's no good if 50% are, or 80% are, or even 99% are. As long as that 1% is still there, an IPv6-only connection does not let you reach the Internet, and users will complain that the Internet is broken. And as said above: "why bother with IPv6 at all, if I have to keep IP4 around?" If there is no incremental benefit to users, neither is there incremental benefit to content providers. From where I'm looking, many large organizations aren't making their content available on IPv6 (e.g. www.bbc.co.uk - who were technical leaders in broadcasting, back in the 20th century); neither are smaller ones, including technical publications like www.theregister.co.uk. Just two random examples. Only they know the real reasons why they're not, but I believe it boils down to a negative business case: cost and time, with on-going running costs (dual-stack and happy-eyeballs makes network problems harder to diagnose), plus no return on investment, plus risks associated with user tracking, advertising and monetization, all set against higher priorities which *do* have a return on investment. You can't tell people that their business case is wrong, or try to make up business cases for them. It's their money and their time, and they know themselves how best to allocate it. It's patronising to suggest otherwise, and they will rightly ignore you. (Aside: it's also worth mentioning that there's no scarcity of IPv4 addresses at the content provider and CDN side. They've been sharing IP addresses been sites for years.) So that's failed. What's the alternative? (2) You can make it practical to deploy IPv6-only networks at the access edge - the places where people sit behind NAT44 today - and still reach IPv4-only content. In that case, single-stack IPv6 replaces single-stack IPv4, and NAT64 replaces NAT44, and *that* starts to become a proposition you can sell: you are choosing between technology A or technology B, not technology A or technology A+B. This is an approach the IETF could spread, with the support of big orgs like Google who are doing it in their own networks. However, building NAT64 needs clue on the side of the user (if they are building their own NAT64), or on the side of the ISP (if they are running a large scale NAT64 on behalf of their users), and it has similar operational overhead to CGN/NAT44, and needs the same external public IPv4 resources, so it is still an uphill struggle. It's a clear win over dual-stack, but much less so over IPv4 single-stack. With my wishing hat on: I would like to see one or more big companies step up to the mark and build a giant, *public* NAT64 or reverse proxy so that the whole IPv4 Internet is accessible to anyone with an IPv6-only address. The big CDNs like Google, Cloudflare, Akamai etc would be well placed to do that. At that point, IPv6-only access ISPs and enterprise networks spring into life. I would expect usage to ramp up as challenger ISPs start to make use of this service; at that point, websites will see more and more of their traffic coming from the CDN source v4 addresses, and will realise they can get *better* tracking of their users by enabling native IPv6, at which point usage will decline. Incremental benefits to all. I would love this to happen, but I'm not holding my breath. Regards, Brian.
- [v6ops] Geoff/queue-closed: 56% Toerless Eckert
- Re: [v6ops] Geoff/queue-closed: 56% Nalini J Elkins
- Re: [v6ops] Geoff/queue-closed: 56% Mark Andrews
- Re: [v6ops] Geoff/queue-closed: 56% Xipengxiao
- Re: [v6ops] Geoff/queue-closed: 56% Brian Candler
- Re: [v6ops] Geoff/queue-closed: 56% Gert Doering
- Re: [v6ops] Geoff/queue-closed: 56% Soni "They/Them" L.
- Re: [v6ops] Geoff/queue-closed: 56% Brian Candler
- Re: [v6ops] Geoff/queue-closed: 56% Vasilenko Eduard
- Re: [v6ops] Geoff/queue-closed: 56% nalini.elkins@insidethestack.com
- Re: [v6ops] Geoff/queue-closed: 56% Xipengxiao